Operationalizing Security: A Targeted Approach to 'SecOps'

Effective "SecOps" involves revamping security processes that are inconsistent and ad hoc to make them targeted and consistent, says Rapid7 CEO Corey Thomas.

"SecOps" - operationalizing security into a continuous, consistent process that's part of the fabric of the business - is difficult to achieve manually, Thomas says in an interview with Information Security Media Group. "The combination of intelligent automation, orchestration and thoughtful targeting of different processes and process maturity has led to very successful process re-engineering and process automation in security," he says.

In addition to being president and CEO of Rapid7, Thomas also serves on its board of directors. In 2018, he was elected to the Cyber Threat Alliance board of directors and the Massachusetts Cybersecurity Strategy Council. He also serves on the Blue Cross Blue Shield of Massachusetts board. Before joining Rapid7, Thomas was vice president of marketing at Parallels Inc., group project manager of Microsoft's server and tools division and a consultant at Deloitte Consulting.